Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/ae0690-9637-4fc5-b41b-d9d0aa28ab2b/1/aDlDE3qYxI7-uOYZj2ziq6Lohic.roa
File: aDlDE3qYxI7-uOYZj2ziq6Lohic.roa (raw, json)
Hash identifier: uGUb0D5o+p5f32Tlf6WT1RKv+Fsn9uFLeA8B/E4SjNo=
Subject key identifier: 68:39:43:13:7A:98:C4:8E:FE:B8:E6:19:8F:6C:E2:AB:A2:E8:86:27
Certificate issuer: /CN=0a16747018e944e405a6d23a564701a155f43739
Certificate serial: 018572CCCC730EB1BCC27C35A61CE624DAEA
Authority key identifier: 0A:16:74:70:18:E9:44:E4:05:A6:D2:3A:56:47:01:A1:55:F4:37:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ChZ0cBjpROQFptI6VkcBoVX0Nzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/ae0690-9637-4fc5-b41b-d9d0aa28ab2b/1/aDlDE3qYxI7-uOYZj2ziq6Lohic.roa
Signing time: Mon 02 Jan 2023 14:05:02 +0000
ROA not before: Mon 02 Jan 2023 14:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211088
IP address blocks: 2001:678:f94::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:cc:cc:73:0e:b1:bc:c2:7c:35:a6:1c:e6:24:da:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a16747018e944e405a6d23a564701a155f43739
Validity
Not Before: Jan 2 14:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=683943137a98c48efeb8e6198f6ce2aba2e88627
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:72:d3:08:80:b0:eb:70:30:a3:e0:17:c6:08:
e6:21:b7:3e:10:2c:04:0e:72:fb:63:16:9c:7a:dc:
50:db:51:f1:3b:ae:a8:a8:f4:38:05:4a:8e:35:3f:
2d:c4:3d:18:71:41:61:a8:d1:b5:dd:23:bc:55:18:
ee:91:88:fe:bb:8b:e5:67:bb:d5:cd:19:50:2c:6d:
d7:2f:7d:13:0d:bc:8a:a7:d4:17:5b:53:f7:f6:7c:
55:b7:63:cd:6b:87:21:ec:bc:f5:fb:f8:ac:60:1f:
25:42:9f:30:a7:05:9f:d9:e1:7a:9c:9e:23:ac:7b:
5b:4e:74:e7:c3:96:c5:e1:8e:96:50:db:d6:8a:f8:
c3:ca:9d:30:0c:fc:c1:94:6b:48:d1:2d:ef:e0:fd:
58:27:e0:12:cd:1f:55:dc:61:32:a3:92:18:00:94:
1f:e4:e3:15:bc:ce:6e:2a:e5:a2:eb:c7:fc:00:40:
ce:f8:9c:3d:8a:90:b0:7c:d1:e4:76:ed:f3:31:ba:
98:0f:26:cc:37:5f:d4:18:91:ad:dd:40:1d:26:9a:
5e:67:d0:2a:cb:c0:4d:38:63:63:48:aa:89:f6:7a:
45:a2:32:80:c8:1a:af:83:c3:b5:e5:85:9f:92:a4:
21:8a:09:42:56:50:d5:f9:ee:7a:98:b7:4e:cd:54:
2c:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:39:43:13:7A:98:C4:8E:FE:B8:E6:19:8F:6C:E2:AB:A2:E8:86:27
X509v3 Authority Key Identifier:
keyid:0A:16:74:70:18:E9:44:E4:05:A6:D2:3A:56:47:01:A1:55:F4:37:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ChZ0cBjpROQFptI6VkcBoVX0Nzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ae0690-9637-4fc5-b41b-d9d0aa28ab2b/1/aDlDE3qYxI7-uOYZj2ziq6Lohic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ae0690-9637-4fc5-b41b-d9d0aa28ab2b/1/ChZ0cBjpROQFptI6VkcBoVX0Nzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:f94::/48
Signature Algorithm: sha256WithRSAEncryption
35:dc:46:83:9f:f8:7e:98:53:c4:6a:49:08:14:6f:fe:29:f2:
1e:c9:3b:3c:04:01:04:bb:03:41:a3:42:e8:8e:25:6a:23:2e:
d1:d9:3f:74:e7:71:86:53:83:e6:21:60:cc:39:14:93:bd:ab:
9d:9a:01:85:88:05:d0:b7:1b:64:4a:ed:5a:a8:bd:4a:f7:c9:
34:3b:5b:4f:ce:5e:7a:94:d4:83:b0:3d:3c:fd:c9:0b:ba:f0:
25:e0:24:e1:26:69:e4:03:a9:3f:9b:a1:81:36:bb:87:fa:16:
b9:3d:8b:15:74:c5:43:c6:35:8a:b0:ca:66:c8:40:a6:37:a7:
9a:8c:cf:b0:da:53:dd:0b:17:c8:4b:25:d3:9a:d8:c8:3b:9b:
fe:30:ab:bb:af:ed:3a:c9:7a:96:16:a7:be:41:d7:d7:10:a8:
85:2f:26:a5:c0:a8:4b:83:3f:c8:9f:e9:f3:09:5f:b4:7d:23:
a7:14:37:3b:9c:8d:7c:c4:bc:1f:79:96:54:07:9d:e5:8a:f6:
a5:e7:57:bb:90:d1:7f:16:14:a4:a8:da:93:20:97:9a:64:19:
58:05:07:f1:86:9b:ab:a5:86:26:3f:23:b6:1f:97:fd:5e:dc:
0b:c5:45:27:a5:db:71:fb:c6:4e:18:18:35:29:c4:e4:56:30:
2b:7f:f6:23
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVyzMxzDrG8wnw1phzmJNrqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBhMTY3NDcwMThlOTQ0ZTQwNWE2ZDIzYTU2NDcwMWExNTVm
NDM3MzkwHhcNMjMwMTAyMTQwNTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ODM5NDMxMzdhOThjNDhlZmViOGU2MTk4ZjZjZTJhYmEyZTg4NjI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs3LTCICw63Awo+AXxgjmIbc+ECwE
DnL7YxacetxQ21HxO66oqPQ4BUqONT8txD0YcUFhqNG13SO8VRjukYj+u4vlZ7vV
zRlQLG3XL30TDbyKp9QXW1P39nxVt2PNa4ch7Lz1+/isYB8lQp8wpwWf2eF6nJ4j
rHtbTnTnw5bF4Y6WUNvWivjDyp0wDPzBlGtI0S3v4P1YJ+ASzR9V3GEyo5IYAJQf
5OMVvM5uKuWi68f8AEDO+Jw9ipCwfNHkdu3zMbqYDybMN1/UGJGt3UAdJppeZ9Aq
y8BNOGNjSKqJ9npFojKAyBqvg8O15YWfkqQhiglCVlDV+e56mLdOzVQsPQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFGg5QxN6mMSO/rjmGY9s4qui6IYnMB8GA1UdIwQY
MBaAFAoWdHAY6UTkBabSOlZHAaFV9Dc5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2haMGNCanBST1FGcHRJNlZrY0JvVlgwTnprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9hZTA2OTAtOTYzNy00ZmM1LWI0MWIt
ZDlkMGFhMjhhYjJiLzEvYURsREUzcVl4STctdU9ZWmoyemlxNkxvaGljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC9hZTA2OTAtOTYzNy00ZmM1LWI0MWItZDlkMGFhMjhhYjJi
LzEvQ2haMGNCanBST1FGcHRJNlZrY0JvVlgwTnprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeA+U
MA0GCSqGSIb3DQEBCwUAA4IBAQA13EaDn/h+mFPEakkIFG/+KfIeyTs8BAEEuwNB
o0LojiVqIy7R2T9053GGU4PmIWDMORSTvaudmgGFiAXQtxtkSu1aqL1K98k0O1tP
zl56lNSDsD08/ckLuvAl4CThJmnkA6k/m6GBNruH+ha5PYsVdMVDxjWKsMpmyECm
N6eajM+w2lPdCxfISyXTmtjIO5v+MKu7r+06yXqWFqe+QdfXEKiFLyalwKhLgz/I
n+nzCV+0fSOnFDc7nI18xLwfeZZUB53lival51e7kNF/FhSkqNqTIJeaZBlYBQfx
hpurpYYmPyO2H5f9XtwLxUUnpdtx+8ZOGBg1KcTkVjArf/Yj
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:44:03 2025 by rpki-client